CISP-PTE

less than 1 minute read

4.1 SQL注入

  • 手工注入或SQLMAP 
    --level 5 -risk 3 -dbs
  • sqli-labs环境 
    docker search sqli-labs
docker pull acgpiano/sqli-labs
docker run -dt --name sqli -p 80:80 -rm acgpiano/sqli-labs

    解法: https://www.cnblogs.com/peterpan0707007/p/7620048.html

  • CTF注入题目主要是PHP+MYSQL
  • 常规手工注入步骤
  • sqlmap
    • 宽字节问题unmagicquotes.py
    • http://www.lengbaikai.net/?p=110
  • 数据交互处:查询、登陆、文章id

4.2 文件上传

-Upload-lab https://github.com/c0ny1/upload-labs

解法:https://xz.aliyun.com/t/2435

  • 题目带简单waf ,要在考场提供的webshell里找免杀马,或着修改为只读文件
<script language=|"PHP">echo file_get_contents($_GET['f']);</script>

Categories:

Updated: